Acta Metallurgica Sinica(English letters) ›› 2007, Vol. 14 ›› Issue (3): 91-94.doi: 1005-8885 (2007) 03-0091-04

• Wireless • Previous Articles     Next Articles

Weaknesses and improvements of a remote user authentication scheme using smart cards

HU Lan-lan;NIU Xin-xin;YANG Yi-xian   

  1. Information Security Center, State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China
  • Received:2006-12-18 Revised:1900-01-01 Online:2007-09-30

Abstract:

In 2005, Liu et al. proposed an improvement to Chien et al.’s remote user authentication scheme, using smart cards, to prevent parallel session attack. This article, however, will demonstrate that Liu et al.’s scheme is vulnerable to masquerading server attack and has the system’s secret key forward secrecy problem. Therefore, an improved scheme with better security strength, by using counters instead of timestamps, is proposed. The proposed scheme does not only achieve their scheme’s advantages, but also enhances its security by withstanding the weaknesses just mentioned.

Key words:

authentication; security; smart cards

CLC Number: